[GTALUG] "DNS Wars"
D. Hugh Redelmeier
hugh at mimosa.com
Thu May 13 17:42:23 EDT 2021
| From: ac via talk <talk at gtalug.org>
| which project are you speaking of
Our project was FreeS/WAN https://freeswan.org/
The intent was to opportunistically encrypt the internet.
Authentication is the hardest part to do.
We decided that a system's ID would be their IP address and the system
would declare its public key in the reverse domain for that IP
address.
This was cute. Out of date now because almost nobody controls their
reverse domain.
Eventually our system worked but almost nobody cared enough to deploy
it. Free software!
The code lives on for VPNs, but that was certainly not the project's
goal.
| and do you happen to know if the
| various/any RIR have any standardised protocols and/or implementations?
No.
PS: the blog post included an embadded YouTube video. I finally
watched it. Very good.
Vixie: "Keynote: DNS Wars: Episode IV A New Bypass" NANOG 2019
https://www.youtube.com/watch?v=LYosersEBoM&t=101s
More information about the talk
mailing list